CVE-2024-53938

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Dec 2, 2024

Updated: Dec 3, 2024

CWE ID 862

Summary

CVE-2024-53938 is a vulnerability affecting Victure RX1800 WiFi 6 Routers with software EN_V1.0.0_r12_110933 and hardware version 1.0. The TELNET service, which is enabled by default and accessible over the local area network, contains a critical flaw: the root account is accessible without a password. This issue grants attackers full control over the router, enabling them to exploit the vulnerability remotely and without authentication. This poses a significant risk to network security and confidentiality.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/04wYuB
https://www.cve.org/CVERecord?id=CVE-2024-53938
https://nvd.nist.gov/vuln/detail/CVE-2024-53938

Back to Vulnerability Database

CVE-2024-53938

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations